ClawHub

Yoco

Security checks across malware telemetry and agentic risk

Overview

This Yoco payment integration is openly described, but it gives an agent live payment, refund, and raw API authority without enough built-in confirmation or scoping guidance.

Install only if you trust Membrane and intentionally want an agent to work with a Yoco payment account. Use the least-privileged connection available, require explicit approval before any payment, refund, create, update, delete, or raw proxy request, review all parameters before execution, and revoke the connection when it is no longer needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill description is overly broad: 'Manage data, records, and automate workflows' could match many generic user requests and cause this payment-processing skill to be invoked outside narrowly intended Yoco tasks. In a financial context, overbroad triggering increases the chance an agent routes sensitive or high-impact operations to a payments integration without sufficient user intent validation.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation explicitly supports refund creation and direct proxy requests, but provides no warning that these actions can be destructive, irreversible, or financially sensitive. In a payment platform skill, that omission can lead an agent to initiate refunds or arbitrary API mutations without adequate user confirmation, creating financial loss or operational disruption.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal